<%
'#################################################################################
'## UnWritten Open Source Blog Engine
'#################################################################################
'## Copyright (C) 2008 Luigi Violin
'##
'## This program is free software: you can redistribute it and/or modify
'## it under the terms of the GNU General Public License as published by
'## the Free Software Foundation, either version 2 of the License, or
'## (at your option) any later version.
'##
'## This program is distributed in the hope that it will be useful,
'## but WITHOUT ANY WARRANTY; without even the implied warranty of
'## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
'## GNU General Public License for more details.
'##
'## You should have received a copy of the GNU General Public License
'## along with this program.  If not, see <http://www.gnu.org/licenses/>.
'##
'## You can obtain support from our forums at:
'##     <http://www.unwrittenblog.com/forums/>
'## Contact the author directly:
'##     <zaamit@hotmail.com/>
'##
'#################################################################################
%>
<%
page_name = ""
page_action = "user-login"
'if it's not a post
if len(request.Form("n"))=0 then
  return_url = request.ServerVariables("HTTP_REFERER")
  else
    return_url = request.Form("return_url")
end if
%>

<!--#include virtual="/default.asp"-->

<%
'functions
function checkLogin(n,p)
	dbRS1.open "select * from " & db_prefix & "users where login = '" & n & "' AND password = '" & p & "'",dbConn
	if not(dbRS1.eof) then
		response.Cookies("user")("u_name") = dbRS1("nick") & ""
		response.Cookies("user")("u_level") = dbRS1("level") & ""
		response.Cookies("user")("u_id") = dbRS1("id") & ""
		response.Cookies("user")("u_url") = dbRS1("url") & ""
		response.Cookies("user")("u_email") = dbRS1("email") & ""
		if (request.Form("remember_me") = "on") then response.Cookies("user").Expires = Date() + 365
	  dbConn.execute "update " & db_prefix & "users set last_visit = '" & str2dat(now()) & "', lastip = '" & Request.ServerVariables("REMOTE_ADDR") & "' where id = " & dbRS1("id")
	end if
	dbRS1.close
	checkLogin = initLogIn
end function
%>